prevent fraud involving fake news, misleading advertisements and fake products on online platforms

 


Analysis of the Script

Potentially Malicious Elements Found

  1. Suspicious External JavaScript

    • The script references dom.js from a relative path (css/dom.js). If this file is malicious, it could inject harmful code.

    • A script is calling window.vitBack("https://pixajotexu.org/..."), which redirects users to an external domain, potentially leading to phishing or malware.

  2. Tracking & Data Collection

    • Facebook Pixel tracking (fbq) is included, which collects user data and sends it to Facebook.

    • A script makes an AJAX request to hash.php?a=27gr2cfrlfrf, potentially sending user information to a remote server.

  3. Fake News & Scam Elements

    • The webpage mimics The Indian Express, a well-known news portal, but the actual article promotes a fake investment scheme (Instant Chenix +30).

    • The news about Shreya Ghoshal's arrest appears fabricated to lure users into the investment scam.

    • The names of celebrities (Shreya Ghoshal, Kareena Kapoor Khan) are misused to establish credibility.

    • Unrealistic financial claims (earning ₹180,000–₹250,000 per day) are classic hallmarks of investment scams.

  4. Potential Phishing / Fraudulent Links

    • Multiple links point to https://fin-news.world, a likely fraudulent site designed to mislead users.

    • The script attempts to redirect users to these links and encourages them to invest money.

    • The website claims the National Bank is investigating Shreya Ghoshal, another tactic to increase urgency and credibility.

  5. Possible Keylogging or User Interaction Tracking

    • The script includes cookie retrieval functions (getCookie(cname)) that could be used to steal session cookies or login credentials.

Conclusion

The script is highly suspicious and likely part of a phishing scam. It uses:

  • Fake news and celebrity endorsements to promote a fraudulent investment scheme.

  • Tracking scripts and cookie manipulation for possible data harvesting.

  • Malicious redirects to an external domain, possibly leading to further scams or malware.

⚠️ Recommendation:

  • Do NOT open the site or interact with it.

  • Do NOT enter any personal or financial information.

  • Report the URL (fin-news.world) to cybersecurity authorities.

  • Block access to the domain in browsers and firewalls.









---------------------------------
https://l.facebook.com/l.php?u=AT0agfR30BKmxQ4x9s1I16-8SVLwVNYrzPL6p6aluIpwqNtiPdhxg6XmaXarmZ39L3Xjwia0yYpnkhWVAm0GvH3FKsKLwfjb1hR8ettKf3RBgNflZOXlj2WBkNvWwx3HovkxrjmEB0mTaQrnpjvhAQ_0-ZVzycam3FEapYw7OfAaRZZxzWUjz6X5Hu9XsgLJmGLh-dfiIyYh_WHKnZaAvEYLj0gQ6uk-mr30CtrTpbJZuUzG0TDZfgNl9gnRSaHBMQI1Fi6mb_ZMckzj1dymd4PdyIa4C1WsOgyqKeU86an7szVm31s2At5vsjRdhNiYAJhv2x3EiDAApy3FTU80jmZsaOB1O5MQqZD4op5Cz3-dR8yFmnPopu_JiZYsFfHaUrrn2w&h=AT3Aa78BjadTWVE7d7G5LxmENPsB2NSYMk6gadib-Y_FbpEv-7F55AixEVYKwpHviSHUxOrwzA8Loja8n9rjTqJ8Pz6ajLOqWKb108ZuxGScmHQpk27BJy_BWUzZx3TCnipWqIc&__cft__[0]=AZUvE2YnKftE20heabL0LOtzoJaYPyXYqQtcJTBRX7AzI6rYyquI2cnehr7MU67EX1JAnM03yheFTn1Gup0qbRm1rhfjHPd2UjA8d3iWGiQh69psP-gGlay37J3e3-BiKCpDwYYfMXJ9BcOJbuV_HdYmXAI2q8gvdX1TOyTz-LACOWXfyTwAp9uNIyUntA06Q-yOGjcVpDfIQKf9rR1Z8-zef-HjYNPRu_nCEeaaMpa8czPKcDC0IT9mZCyMsGgWG4BM5GygOii6HbX_6HxCVl6h&__tn__=*J%2CmH-R

https://fin-news.world/scandal_2025?c=1211553083282417cbo&d=ads_1&b=sg_6&placement=Facebook_Desktop_Feed&e=IN_SG_TOP_DT_cbo&fbclid=IwY2xjawJQYPtleHRuA2FlbQEwAGFkaWQBqxpdxtKWlgEdkhkZoxXjiEC-r4hoCrA513B8vbv48M7Yru5N7IhP4T830PfvOm1WvFA7_aem_SVdmn9LNz8L1BBxs83I4fA

Comments

Popular posts from this blog

Latest 394 scientific research areas and projects as of March 2025, Exploring the Future of Technology and Sustainability

Unmasking Hidden Threats: A Deep Dive into a Suspicious Facebook Ads Link

200 Mistakes Hacker Might Make, And How A Network Security Professionals Can Find It Out.